$ rpki-client -vvf rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft File: rdsr88QYJtbQ--jSvy8FLZil2Uk.mft (raw, json) Hash identifier: LwGn9a1XXmIHhW5fhy14NdNhHlRiSSDx4UUF6RLORfs= Subject key identifier: 79:D3:D4:5F:9A:4B:8C:84:71:7F:29:EB:21:BF:93:8F:86:9E:D3:88 Authority key identifier: AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 Certificate issuer: /CN=A91689C8/serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft Manifest number: 023A Signing time: Sat 23 Aug 2025 02:41:15 +0000 Manifest this update: Sat 23 Aug 2025 02:41:15 +0000 Manifest next update: Sat 30 Aug 2025 02:41:15 +0000 Files and hashes: 1: rdsr88QYJtbQ--jSvy8FLZil2Uk.crl (hash: r519uPUrLkLLqT7feE6zHlinrgIcsLlwY1zvY8mcXqM=) 2: 3BB70A86092211F08BA72686C4F9AE02.roa (hash: 2J/4S4P7iHBoNIa8ALxa/H8YBNXVUqoF1W5QLX0G6vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689C8, serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Validity Not Before: Aug 23 02:41:15 2025 GMT Not After : Aug 30 02:41:15 2025 GMT Subject: CN=68a92a4b-84c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6d:a3:a9:27:2f:0c:38:e0:3a:14:78:f8:af: 70:54:88:95:20:56:05:38:76:fe:73:c3:ff:59:06: 8a:98:74:33:2b:26:23:4d:3a:d0:ca:cf:9a:9d:4c: 86:4f:2f:8a:2d:dd:90:70:03:e6:f9:be:67:7c:38: 1c:19:47:47:b7:ea:8d:fd:d4:18:57:b3:dd:a8:ad: 17:91:04:43:42:8e:f6:90:ed:45:f3:13:82:f3:1a: e6:cf:51:cc:b5:b3:39:91:e2:4d:87:3b:e5:4f:ce: 5b:31:8a:d9:0d:e3:80:e5:c4:6d:17:80:06:43:07: 0a:42:68:83:8e:07:85:f6:23:ad:91:ec:2a:6f:93: 86:6b:ba:d3:80:bc:51:56:67:44:08:68:c0:ab:31: 02:83:d2:03:6c:72:6e:74:d3:bd:82:f4:34:46:55: e3:5f:04:6f:ad:c3:ee:44:7c:e6:1c:5f:b7:3f:ad: 6e:1e:8e:49:5c:77:f2:6d:a4:dd:0c:0e:1b:00:37: 79:f2:e5:05:0c:76:0c:1f:7a:24:75:91:85:bb:57: 08:a9:97:ff:0e:6a:af:f0:7c:31:01:d9:c0:4a:98: 04:31:3a:78:09:cc:5f:48:12:0e:f9:de:51:f8:bd: b8:dd:74:c1:ea:37:d7:81:43:79:d0:cc:14:cf:ae: 90:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D3:D4:5F:9A:4B:8C:84:71:7F:29:EB:21:BF:93:8F:86:9E:D3:88 X509v3 Authority Key Identifier: keyid:AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:20:be:2b:43:2b:ae:15:e5:3f:fc:41:38:6a:a7:f6:66:a1: 05:45:33:fe:19:0f:61:11:3d:af:21:03:1b:e6:72:8e:d1:67: 1b:0b:bc:4d:6c:27:74:3a:a4:9d:f4:32:fa:9e:a2:9d:6a:2f: b0:d1:08:7d:a0:06:14:24:c4:d0:9f:12:da:47:8f:6a:42:f0: a2:73:2f:4a:9a:0a:ce:ca:30:ae:ed:17:b1:d1:48:37:c2:e7: bf:82:c0:3a:61:e1:79:61:b0:85:0f:bb:a4:65:75:19:66:1b: 76:ed:69:8f:38:c9:69:3f:da:f3:e4:05:3e:6b:d4:f1:a0:93: 0e:af:00:f3:e0:8a:9e:a7:a0:1e:51:40:fc:de:ae:d5:11:90: f1:ff:ba:3d:00:31:b6:22:6c:d4:3c:74:a0:6e:32:cc:f6:c0: 95:f1:cd:b2:f9:b6:2d:63:4c:cb:4e:5a:46:a1:a4:23:84:08: c0:cf:76:e0:3e:15:e9:f3:23:7c:76:03:3a:90:23:44:3c:7e: bf:cf:fa:4e:1a:0d:e6:71:79:4d:14:8d:32:04:b6:6a:27:06: e9:c5:1a:06:78:c9:91:c2:1d:74:14:cc:0f:43:67:a1:17:d7: b0:ea:5f:ab:07:ba:f4:20:a5:7a:21:c2:47:24:7c:44:53:ce: 30:f0:c9:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODlDODExMC8GA1UEBRMoQUREQjJCRjNDNDE4MjZENkQwRkJFOEQyQkYyRjA1MkQ5 OEE1RDk0OTAeFw0yNTA4MjMwMjQxMTVaFw0yNTA4MzAwMjQxMTVaMBgxFjAUBgNV BAMTDTY4YTkyYTRiLTg0YzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGbaOpJy8MOOA6FHj4r3BUiJUgVgU4dv5zw/9ZBoqYdDMrJiNNOtDKz5qdTIZP L4ot3ZBwA+b5vmd8OBwZR0e36o391BhXs92orReRBENCjvaQ7UXzE4LzGubPUcy1 szmR4k2HO+VPzlsxitkN44DlxG0XgAZDBwpCaIOOB4X2I62R7Cpvk4ZrutOAvFFW Z0QIaMCrMQKD0gNscm50072C9DRGVeNfBG+tw+5EfOYcX7c/rW4ejklcd/JtpN0M DhsAN3ny5QUMdgwfeiR1kYW7Vwipl/8Oaq/wfDEB2cBKmAQxOngJzF9IEg753lH4 vbjddMHqN9eBQ3nQzBTPrpBPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUedPUX5pL jIRxfynrIb+Tj4ae04gwHwYDVR0jBBgwFoAUrdsr88QYJtbQ++jSvy8FLZil2Ukw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4OUM4LzM4QjM4RTVFOERE NzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRiUS0talN2eThGTFppbDJV ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmRzcjg4UVlKdGJRLS1qU3Z5OEZMWmlsMlVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 OUM4LzM4QjM4RTVFOERENzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRi US0talN2eThGTFppbDJVay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMwgvitDK64V5T/8QThqp/ZmoQVFM/4ZD2ERPa8hAxvmco7RZxsLvE1s J3Q6pJ30Mvqeop1qL7DRCH2gBhQkxNCfEtpHj2pC8KJzL0qaCs7KMK7tF7HRSDfC 57+CwDph4XlhsIUPu6RldRlmG3btaY84yWk/2vPkBT5r1PGgkw6vAPPgip6noB5R QPzertURkPH/uj0AMbYibNQ8dKBuMsz2wJXxzbL5ti1jTMtOWkahpCOECMDPduA+ FenzI3x2AzqQI0Q8fr/P+k4aDeZxeU0UjTIEtmonBunFGgZ4yZHCHXQUzA9DZ6EX 17DqX6sHuvQgpXohwkckfERTzjDwyQc= -----END CERTIFICATE-----Generated at Sat Aug 23 15:55:45 2025 by rpki-client